Головна сторінка Огляд Довідка
Увійти
SoftwareDesign
/
csu3_am335x
8
0
Відгалуження 0
Файли Проблеми 0 Запити на злиття 0 Wiki
Гілка: master
Гілки Теги
csu3_am335x
/
EVSE
/
GPL
/
tpm2-tools-5.1
/
test
/
integration
/
fapi
/
fapi-nv-write-read-policy-or_ecc.sh

fapi-nv-write-read-policy-or_ecc.sh 2.5 KB
Постійне посилання Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118 
  1. set -e
    2. 

  2. source helpers.sh
    3. 

  3. 

  4. start_up
    5. 

  5. 

  6. CRYPTO_PROFILE="ECC"
    7. 

  7. setup_fapi $CRYPTO_PROFILE
    8. 

  8. 

  9. function cleanup {
    10. 

  10.     tss2 delete --path=/
    11. 

  11.     shut_down
    12. 

  12. }
    13. 

  13. 

  14. trap cleanup EXIT
    15. 

  15. 

  16. PW=abc
    17. 

  17. NV_PATH=/nv/Owner/myNV
    18. 

  18. DATA_WRITE_FILE=$TEMP_DIR/nv_write_data.file
    19. 

  19. DATA_READ_FILE=$TEMP_DIR/nv_read_data.file
    20. 

  20. POLICY_NV_DATA=$TEMP_DIR/pol_nv_read_write.json
    21. 

  21. POLICY_NV=/policy/nv_read_write
    22. 

  22. LOG_FILE=$TEMP_DIR/log.file
    23. 

  23. touch $LOG_FILE
    24. 

  24. PW=abc
    25. 

  25. 

  26. tss2 provision
    27. 

  27. 

  28. echo test > $DATA_WRITE_FILE
    29. 

  29. 

  30. tss2 import -i $POLICY_NV_DATA -p $POLICY_NV
    31. 

  31. tss2 createnv -p $NV_PATH -P $POLICY_NV -s 16 --authValue=$PW
    32. 

  32. 

  33. echo "Write with write policy"
    34. 

  34. expect <<EOF
    35. 

  35. # Check if system asks for branch selection
    36. 

  36. spawn sh -c "tss2 nvwrite --nvPath=$NV_PATH --data=$DATA_WRITE_FILE> $LOG_FILE"
    37. 

  37. expect -re {
    38. 

  38.     "Select a branch.*" {
    39. 

  39.     } eof {
    40. 

  40.         send_user "The system has not asked for branch selection\n"
    41. 

  41.         exit 1
    42. 

  42.     }
    43. 

  43.     }
    44. 

  44.     send "1\r"
    45. 

  45.     set ret [wait]
    46. 

  46.     if {[lindex \$ret 2]} {
    47. 

  47.         send_user "Command failed\n"
    48. 

  48.         exit 1
    49. 

  49.     }
    50. 

  50. EOF
    51. 

  51. 

  52. echo "Read with read policy."
    53. 

  53. expect <<EOF
    54. 

  54. spawn sh -c "tss2 nvread --nvPath=$NV_PATH --data=$DATA_READ_FILE> $LOG_FILE"
    55. 

  55. expect -re {
    56. 

  56.     "Select a branch.*" { }
    57. 

  57.     eof {
    58. 

  58.         send_user "The system has not asked for branch selection\n"
    59. 

  59.         exit 1
    60. 

  60.     }
    61. 

  61.     }
    62. 

  62. send "2\r"
    63. 

  63. set ret [wait]
    64. 

  64. if {[lindex \$ret 2] || [lindex \$ret 3] != 0} {
    65. 

  65.     set file [open $LOG_FILE r]
    66. 

  66.         send_user "Command failed\n"
    67. 

  67.         exit 1
    68. 

  68.     }
    69. 

  69. EOF
    70. 

  70. 

  71. echo "Write with read policy should fail."
    72. 

  72. expect <<EOF
    73. 

  73. # Check if system asks for branch selection
    74. 

  74. spawn sh -c "tss2 nvwrite --nvPath=$NV_PATH --data=$DATA_WRITE_FILE> $LOG_FILE"
    75. 

  75. expect -re {
    76. 

  76.     "Select a branch.*" {
    77. 

  77.     } eof {
    78. 

  78.         send_user "The system has not asked for branch selection\n"
    79. 

  79.         exit 1
    80. 

  80.     }
    81. 

  81.     }
    82. 

  82.     send "2\r"
    83. 

  83.     set ret [wait]
    84. 

  84.     if {[lindex \$ret 2] || [lindex \$ret 3] != 1} {
    85. 

  85.         send_user "Command failed\n"
    86. 

  86.         exit 1
    87. 

  87.     }
    88. 

  88. EOF
    89. 

  89. 

  90. echo "Read with write policy should fail."
    91. 

  91. expect <<EOF
    92. 

  92. spawn sh -c "tss2 nvread --nvPath=$NV_PATH --data=$DATA_READ_FILE> $LOG_FILE"
    93. 

  93. expect -re {
    94. 

  94.     "Select a branch.*" {
    95. 

  95.     } eof {
    96. 

  96.         send_user "The system has not asked for branch selection\n"
    97. 

  97.         exit 1
    98. 

  98.     }
    99. 

  99.     }
    100. 

  100.     send "1\r"
    101. 

  101.     set ret [wait]
    102. 

  102.     if {[lindex \$ret 2] || [lindex \$ret 3] != 1} {
    103. 

  103.     set file [open $LOG_FILE r]
    104. 

  104.         send_user "Command failed\n"
    105. 

  105.         exit 1
    106. 

  106.     }
    107. 

  107. EOF
    108. 

  108. 

  109. tss2 delete --path=$NV_PATH
    110. 

  110. 

  111. if [[ "`cat $LOG_FILE`" == $SANITIZER_FILTER ]]; then
    112. 

  112.   echo "Error: AddressSanitizer triggered."
    113. 

  113.   cat $LOG_FILE
    114. 

  114.   exit 1
    115. 

  115. fi
    116. 

  116. 

  117. exit 0
    118. 

  118.